Skip to content

CVE Dio 5.0.3 | Google OVS Scanner #1752

New issue
New issue
Closed
Closed
CVE Dio 5.0.3 | Google OVS Scanner#1752
Labels
fixedp: dioTargeting `dio` packagep: ecosystemTargeting packages that's under the dio's ecosystemvaluableThe issue or the fix means a lot to the library.
@set0x

Description

@set0x
set0x
opened on Mar 21, 2023

Package

dio

Version

5.0.3

Output of flutter doctor -v

No response

Dart Version

2.19.4

Steps to Reproduce

Excute scanner in a flutter project with dio 5.0.3 dependency.

osv-scanner .

You can use Docker image from project

Expected Result

Empty response from scanner.

Actual Result

+-------------------------------------+-----------+---------+---------+--------------+
| OSV URL (ID IN BOLD)                | ECOSYSTEM | PACKAGE | VERSION | SOURCE       |
+-------------------------------------+-----------+---------+---------+--------------+
| https://osv.dev/GHSA-jwpw-q68h-r678 | Pub       | dio     | 5.0.3   | pubspec.lock |
+-------------------------------------+-----------+---------+---------+--------------+

Metadata

Metadata

Assignees

No one assigned

    Labels

    fixedp: dioTargeting `dio` packagep: ecosystemTargeting packages that's under the dio's ecosystemvaluableThe issue or the fix means a lot to the library.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions